CVE-2025-60710

Name of the Vulnerable Software and Affected Versions Windows versions (affected versions not specified)

Description An issue exists that allows for local privilege escalation. The problem stems from improper link resolution before file access ('link following') within the Host Process for Windows Tasks. Specifically, the vulnerability resides in the handling of the C:Users%username%AppDataLocalCoreAIPlatform.00UKP directory and the deletion of directories matching the filter {????????-????-????-????-????????????} without verifying symbolic links. A low-privilege user can create directories within their %LOCALAPPDATA% folder, leading to arbitrary folder deletion under the NT AUTHORITYSYSTEM user context. This affects the MicrosoftWindowsWindowsAIRecallPolicyConfiguration scheduled task.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.